[TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt]
Carolin Latze <carolin.latze@unifr.ch> Wed, 07 October 2009 15:16 UTC
Return-Path: <carolin.latze@unifr.ch>
X-Original-To: tls@core3.amsl.com
Delivered-To: tls@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3BDB128C0E6 for <tls@core3.amsl.com>; Wed, 7 Oct 2009 08:16:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.323
X-Spam-Level:
X-Spam-Status: No, score=-6.323 tagged_above=-999 required=5 tests=[AWL=0.276, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BRmf7Uumx4WN for <tls@core3.amsl.com>; Wed, 7 Oct 2009 08:16:06 -0700 (PDT)
Received: from siufsrv104.unifr.ch (siufsrv104.unifr.ch [134.21.214.74]) by core3.amsl.com (Postfix) with ESMTP id E48E73A657C for <tls@ietf.org>; Wed, 7 Oct 2009 08:16:05 -0700 (PDT)
Received: from diufpc272.unifr.ch ([134.21.72.156]) by siufsrv104.unifr.ch stage1 with esmtp with id 1MvYGu-0005fm-C1 for <tls@ietf.org> from <carolin.latze@unifr.ch>; Wed, 07 Oct 2009 17:17:44 +0200
Message-ID: <4ACCB0E4.4000801@unifr.ch>
Date: Wed, 07 Oct 2009 17:16:52 +0200
From: Carolin Latze <carolin.latze@unifr.ch>
User-Agent: Thunderbird 2.0.0.23 (X11/20090916)
MIME-Version: 1.0
To: tls@ietf.org
Content-Type: multipart/mixed; boundary="------------080303030202010204080100"
Subject: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt]
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Oct 2009 15:16:07 -0000
Hi all, after several experiments with TPMs as authentication devices in EAP-TLS, we figured out, that the specific modifications in order to use TPMs might be rather an extension to TLS than an EAP extension. Therefore, we gave it a try and defined a new TLS extension in order to use TPM certified keys directly with TLS. We are aware of the fact, that there is a possibility to request new valid X.509 certificates for those keys which allows to use them with standard TLS (and do not require a new extension), but since we want to avoid that request (and we think that this does not introduce any security issues), we propose this extension. We are always open for discussions, (critical) feedback, suggestions, ... Regards Carolin Latze -------- Original Message -------- Subject: {Virus?} I-D Action:draft-latze-tls-tpm-extns-00.txt Date: Wed, 7 Oct 2009 16:45:01 +0200 From: Internet-Drafts@ietf.org <Internet-Drafts@ietf.org> Reply-To: internet-drafts@ietf.org <internet-drafts@ietf.org> To: i-d-announce@ietf.org <i-d-announce@ietf.org> A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Transport Layer Security (TLS) Extensions for the Trusted Platform Module (TPM) Author(s) : C. Latze, et al. Filename : draft-latze-tls-tpm-extns-00.txt Pages : 10 Date : 2009-10-07 Trusted Platform Modules (TPMs) become more and more widespread in modern desktop and laptop computers and provide secure storage and cryptographic functions. As one nice feature of TPMs is that they can be identified uniquely, they provide a good base for device authentication in protocols like TLS.This document specifies a TLS extension that allows to use TPM certified keys with TLS in order to allow for a secure and comfortable device authentication in TLS. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-latze-tls-tpm-extns-00.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ Below is the data which will enable a MIME compliant mail reader implementation to automatically retrieve the ASCII version of the Internet-Draft. -- Carolin Latze PhD Student ICT Engineer Department of Computer Science Swisscom Strategy and Innovation Boulevard de Pérolles 90 Ostermundigenstrasse 93 CH-1700 Fribourg CH-3006 Bern phone: +41 26 300 83 30 +41 79 72 965 27 homepage: http://diuf.unifr.ch/people/latzec
- [TLS] [Fwd: {Virus?} I-D Action:draft-latze-tls-t… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Blumenthal, Uri
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Eric Rescorla
- [TLS] [Fwd: Re: [Fwd: {Virus?} I-D Action:draft-l… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Blumenthal, Uri
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Carolin Latze
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Pasi.Eronen
- Re: [TLS] [Fwd: {Virus?} I-D Action:draft-latze-t… Carolin Latze